Penetration Testing mailing list archives
RE: Sniffing on a switch
From: "Todd Towles" <toddtowles () brookshires com>
Date: Mon, 31 Oct 2005 09:30:21 -0600
If you don't have port forwarding in your Linux kernel that would be a problem..however. Ettercap creates a MITM attack.
-----Original Message----- From: mike jablonski [mailto:mkj () swissmail org] Sent: Saturday, October 29, 2005 12:19 AM To: Andy Meyers Cc: pen-test () securityfocus com Subject: Re: Sniffing on a switch hahaha YES you can!! ;) http://ettercap.sourceforge.net/ This is a great sniffing tool. If you don't have admin rights to setup mirroring on the switch; use ettercap. Have fun! -- jabber "paranoid by default" Quoting Andy Meyers <andy.meyers () hushmail com>:-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Now i know people say you "cant" sniff on a switch and Iknow about ARPpoisoning and MAC flooding. But there has to be anotherway. I have heardtoo many stories about "he sniffed my AIM conversation on aCisco switch"(an example is in the most recent version of 2600). Doesanyone know of anytechnique how to do this? Can you ARP poison a switch? Ashes -----BEGIN PGP SIGNATURE----- Note: This signature can be verified athttps://www.hushtools.com/verify/Version: Hush 2.4 Charset: UTF8 wkYEARECAAYFAkNhkwYACgkQnZu7yPmLRpArTQCgp2JsbOSySZJ7XFvgy1sY4GcGntYA oIwtV7CLTBjr5j2yW0v1In/Jm7Yv =rigp -----END PGP SIGNATURE------------------------------------------------------------------- ----------------Audit your website security with Acunetix Web VulnerabilityScanner:Hackers are concentrating their efforts on attackingapplications on yourwebsite. Up to 75% of cyber attacks are launched onshopping carts, forms,login pages, dynamic content etc. Firewalls, SSL andlocked-down servers arefutile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other webattacks before hackersdo! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831-------------------------------------------------------------- ------------------------------------------------------------------------------- ---------------- Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------- -----------------
------------------------------------------------------------------------------ Audit your website security with Acunetix Web Vulnerability Scanner: Hackers are concentrating their efforts on attacking applications on your website. Up to 75% of cyber attacks are launched on shopping carts, forms, login pages, dynamic content etc. Firewalls, SSL and locked-down servers are futile against web application hacking. Check your website for vulnerabilities to SQL injection, Cross site scripting and other web attacks before hackers do! Download Trial at: http://www.securityfocus.com/sponsor/pen-test_050831 -------------------------------------------------------------------------------
Current thread:
- Re: Sniffing on a switch, (continued)
- Re: Sniffing on a switch Volker Tanger (Oct 29)
- Re: Sniffing on a switch Cedric Blancher (Oct 31)
- Re: Sniffing on a switch jgervacio (Oct 31)
- Re: Sniffing on a switch Chris Mills (Oct 29)
- Re: Sniffing on a switch Stephen J. Smoogen (Oct 29)
- Re: Sniffing on a switch Dave Bush (Oct 29)
- Re: Sniffing on a switch ilaiy (Oct 29)
- Re: Sniffing on a switch Mikael Kuisma (Oct 31)
- RE: Sniffing on a switch Smith, Michael J. (Oct 29)
- RE: Sniffing on a switch Evans, Arian (Oct 31)
- RE: Sniffing on a switch Todd Towles (Oct 31)
- Re: Sniffing on a switch Volker Tanger (Oct 29)